$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: 5iDPKd3Bmhd8D+G5i9danhzQ2jJ7g8y3mzwjafyhi4E= Subject key identifier: B8:C3:C0:72:5A:9A:4F:BC:27:89:2F:91:E1:6E:34:59:56:0A:E7:D4 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 026B Signing time: Sat 13 Jun 2026 02:07:13 +0000 Manifest this update: Sat 13 Jun 2026 02:07:12 +0000 Manifest next update: Sat 20 Jun 2026 02:07:12 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: DOy3S2ngZI9jzDtcryRzQh1stQwI8z8Iden1bSyHPes=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: BbJgy4+r5xqumD47JYCsm8jlMt7XgJ8HLQRHYGqlUlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Jun 13 02:07:12 2026 GMT Not After : Jun 20 02:07:12 2026 GMT Subject: CN=6a2cbb51-0ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:fe:cf:d1:ae:28:00:16:2f:c6:63:c7:ba: bb:34:96:92:96:1e:ef:9b:08:a1:39:e9:68:f9:e4: 83:d8:1e:e5:d6:ba:dc:ac:be:26:8b:c3:b4:d7:7e: fe:39:7d:b3:9c:a6:23:b6:5f:80:59:21:27:67:30: 12:7d:f0:cd:3a:5a:6a:69:f0:2c:ff:83:f6:fd:cb: b6:42:01:2e:9f:64:95:59:a3:7e:f0:b6:82:f7:35: 12:7d:93:a7:d1:5c:3c:eb:db:a0:0e:9d:5f:25:b7: 83:3a:f8:37:0d:e8:b8:c8:c3:9e:14:2a:85:4c:e5: cd:79:75:f6:2d:5f:79:c4:a3:4f:e7:9c:3d:3a:68: 20:0f:1a:a3:c5:b4:a5:64:dd:96:e9:0a:ee:3d:f9: b4:ac:47:32:40:0a:67:16:ee:af:47:05:a1:26:23: ae:5b:27:eb:2d:d8:b3:f9:b2:7c:9b:d1:f6:44:be: 1a:b4:af:0f:39:d2:05:ae:a0:e5:eb:fa:8a:fd:29: f8:48:02:b8:97:cc:1b:51:79:ae:fd:9d:b9:93:70: 63:7e:4a:63:2b:54:93:e1:07:50:9f:42:76:90:60: c7:b1:31:7d:69:ba:c3:6a:04:65:93:ff:21:ce:01: c8:a9:c9:17:eb:dd:0e:65:dc:8c:2e:7b:92:63:93: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C3:C0:72:5A:9A:4F:BC:27:89:2F:91:E1:6E:34:59:56:0A:E7:D4 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d9:a3:4b:16:01:7f:46:93:63:ca:fb:c6:db:37:62:82:74: 73:78:24:70:86:6d:76:fb:76:89:46:47:01:b4:c3:40:78:fa: 85:d2:50:78:07:26:44:ee:c6:f4:12:57:1a:7d:b6:0e:89:55: bf:ee:28:10:38:c6:4f:a8:92:fc:e4:ac:1d:04:03:af:d0:b7: fa:66:a7:fb:65:dd:81:83:c2:f6:16:12:b9:c7:c8:8b:07:16: be:4d:71:53:68:4d:b7:92:54:b4:10:5c:89:5e:bd:fe:49:60: 2b:a6:16:90:e4:52:5c:c5:d0:fa:f8:85:69:80:5e:a5:35:91: 5f:74:95:31:c6:dd:c8:0d:6c:63:2b:24:e9:9f:98:83:35:97: 88:53:26:cf:36:cd:b5:60:08:40:b9:4d:a1:f1:2f:e7:5c:1c: d8:56:3f:74:be:67:60:9c:49:91:0a:a9:21:b8:32:f1:60:84: 44:50:48:2b:0b:43:3e:3c:ef:d0:25:af:18:2a:c7:bb:b9:92: 26:63:d8:85:8d:51:24:48:0a:42:fd:e2:67:51:42:a3:eb:0b: 2f:23:02:79:06:8f:9c:0a:a6:59:15:4f:ed:94:2b:f0:80:ae: 0f:0c:10:a0:6e:67:14:c3:cc:e1:6b:17:83:0c:4c:9c:a3:33: cc:ea:52:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjYwNjEzMDIwNzEyWhcNMjYwNjIwMDIwNzEyWjAYMRYwFAYD VQQDEw02YTJjYmI1MS0wZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaj+z9GuKAAWL8Zjx7q7NJaSlh7vmwihOelo+eSD2B7l1rrcrL4mi8O0137+ OX2znKYjtl+AWSEnZzASffDNOlpqafAs/4P2/cu2QgEun2SVWaN+8LaC9zUSfZOn 0Vw869ugDp1fJbeDOvg3Dei4yMOeFCqFTOXNeXX2LV95xKNP55w9OmggDxqjxbSl ZN2W6QruPfm0rEcyQApnFu6vRwWhJiOuWyfrLdiz+bJ8m9H2RL4atK8POdIFrqDl 6/qK/Sn4SAK4l8wbUXmu/Z25k3BjfkpjK1ST4QdQn0J2kGDHsTF9abrDagRlk/8h zgHIqckX690OZdyMLnuSY5NndwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLjDwHJa mk+8J4kvkeFuNFlWCufUMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW9mjSxYBf0aTY8r7xts3YoJ0c3gkcIZtdvt2iUZHAbTDQHj6hdJQeAcmRO7G 9BJXGn22DolVv+4oEDjGT6iS/OSsHQQDr9C3+man+2XdgYPC9hYSucfIiwcWvk1x U2hNt5JUtBBciV69/klgK6YWkORSXMXQ+viFaYBepTWRX3SVMcbdyA1sYysk6Z+Y gzWXiFMmzzbNtWAIQLlNofEv51wc2FY/dL5nYJxJkQqpIbgy8WCERFBIKwtDPjzv 0CWvGCrHu7mSJmPYhY1RJEgKQv3iZ1FCo+sLLyMCeQaPnAqmWRVP7ZQr8ICuDwwQ oG5nFMPM4WsXgwxMnKMzzOpSaA== -----END CERTIFICATE-----Generated at Sat Jun 13 07:29:21 2026 by rpki-client